tags 301372 +pending thanks On Fri, Mar 25, 2005 at 01:37:14PM +0100, Moritz Muehlenhoff wrote: > Package: kernel-source-2.6.8 > Version: 2.6.8-15 > Severity: grave > Tags: security > > Kernels before 2.6.11 do not properly restrict access to the N_MOUSE line > disciple for TTYs, which allows local users to inject mouse or keyboard > events into other's users sessions and possibly gain extended privileges. > > A fix is referenced at > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0839 (I currently > don't have a mouse and typing Bitkeeper web URLs is too weird :-))
Thanks, I have added this patch into svn for 2.6.8. -- Horms -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
